Book description
Implement maximum control, security, and compliance processes in Azure cloud environments In Microsoft Azure Security Infrastructure, three leading experts show how to plan, deploy, and operate Microsoft Azure with outstanding levels of control, security, and compliance. You’ll learn how to prepare infrastructure with Microsoft’s integrated tools, prebuilt templates, and managed services–and use these to help safely build and manage any enterprise, mobile, web, or Internet of Things (IoT) system. The authors guide you through enforcing, managing, and verifying robust security at physical, network, host, application, and data layers. You’ll learn best practices for security-aware deployment, operational management, threat mitigation, and continuous improvement–so you can help protect all your data, make services resilient to attack, and stay in control no matter how your cloud systems evolve.
Three Microsoft Azure experts show you how to:
• Understand cloud security boundaries and responsibilities
• Plan for compliance, risk management, identity/access management, operational security, and endpoint and data protection
• Explore Azure’s defense-in-depth security architecture
• Use Azure network security patterns and best practices
• Help safeguard data via encryption, storage redundancy, rights management, database security, and storage security
• Help protect virtual machines with Microsoft Antimalware for Azure Cloud Services and Virtual Machines
• Use the Microsoft Azure Key Vault service to help secure cryptographic keys and other confidential information
• Monitor and help protect Azure and on-premises resources with Azure Security Center and Operations Management Suite
• Effectively model threats and plan protection for IoT systems
• Use Azure security tools for operations, incident response, and forensic investigation
Table of contents
- Cover
- Title Page
- Copyright Page
- Contents
- Foreword
- Introduction
- Chapter 1. Cloud security
- Chapter 2. Identity protection in Azure
-
Chapter 3. Azure network security
- Anatomy of Azure networking
-
Azure Network Security best practices
- Subnet your networks based on security zones
- Use Network Security Groups carefully
- Use site-to-site VPN to connect Azure Virtual Networks
- Configure host-based firewalls on IaaS virtual machines
- Configure User Defined Routes to control traffic
- Require forced tunneling
- Deploy virtual network security appliances
- Create perimeter networks for Internet-facing devices
- Use ExpressRoute
- Optimize uptime and performance
- Disable management protocols to virtual machines
- Enable Azure Security Center
- Extend your datacenter into Azure
- Chapter 4. Data and storage security
- Chapter 5. Virtual machine protection with Antimalware
- Chapter 6. Key management in Azure with Key Vault
- Chapter 7. Azure resource management security
- Chapter 8. Internet of Things security
- Chapter 9. Hybrid environment monitoring
- Chapter 10. Operations and management in the cloud
- Index
- About the authors
- Free ebooks
- Survey
- Code Snippets
Product information
- Title: Microsoft Azure Security Infrastructure
- Author(s):
- Release date: August 2016
- Publisher(s): Microsoft Press
- ISBN: 9781509304028
You might also like
book
Microsoft Azure Network Security
Master a complete strategy for protecting any Azure cloud network environment! Network security is crucial to …
book
Azure Cloud Security for Absolute Beginners: Enabling Cloud Infrastructure Security with Multi-Level Security Options
Implement cloud security with Azure security tools, configurations and policies that address the needs of businesses …
book
Microsoft Azure: Planning, Deploying, and Managing the Cloud
Gain the technical and business insight needed to plan, deploy, and manage the services provided by …
book
Microsoft Azure Security Center, 2nd Edition
NOW FULLY UPDATED: high-value Azure Security Center insights, tips, and operational solutions Reflecting updates through mid-2019, …